cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:10-09-2015 01
Exécuté par MARTINEBO (2015-09-11 22:43:38)
Exécuté depuis C:\Users\MARTINEBO\Desktop
Windows 8.1 (X64) (2014-08-23 04:52:50)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-4151986812-16683538-224380620-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-4151986812-16683538-224380620-1004 - Limited - Enabled)
Invité (S-1-5-21-4151986812-16683538-224380620-501 - Limited - Disabled)
MARTINEBO (S-1-5-21-4151986812-16683538-224380620-1002 - Administrator - Enabled) => C:\Users\MARTINEBO
UpdatusUser (S-1-5-21-4151986812-16683538-224380620-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adblock Plus pour IE (32-bits et 64-bits) (HKLM\...\{92E167CC-3D19-47EB-AE7F-A135427C3220}) (Version: 1.4 - Eyeo GmbH)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.4.117.01527 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.4.117.01527 - Alcor Micro Corp.) Hidden
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.4 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.1.4 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0005 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5230.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.5230.52 - CyberLink Corp.) Hidden
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0030 - ASUS)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
C310 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
Canon MX350 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX350_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
FastStone Capture 5.3 (French) (HKLM-x32\...\FastStone Capture) (Version: 5.3 (French) - FastStone Soft)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Premium C310 All-in-One Driver Software 14.0 Rel. 7 (HKLM\...\{131D8ED6-4864-4554-9BAB-09B47C232522}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 10.6.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.5 - )
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Money (HKLM-x32\...\Money2005b) (Version: 14 - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mises à jour NVIDIA 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
MyDriveConnect 4.0.2.2123 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.2.2123 - TomTom)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NVIDIA PhysX System Software 9.13.0325 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0325 - NVIDIA Corporation)
NVIDIA Pilote graphique 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden
PS_AIO_07_C310_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6804 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{DD51BA84-F589-4939-B5FE-5538B3DCC12E}) (Version: - Microsoft)
VDownloader 4.0.1216 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version: - Vitzo Limited)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows Driver Package - ASUS (ATP) Mouse (01/10/2013 1.0.0.170) (HKLM\...\4A9DE1E9EBC800B7F01739D4DE7363EF6751BDF5) (Version: 01/10/2013 1.0.0.170 - ASUS)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Process Security 2.1 (HKLM-x32\...\WindowsProcessSecurity) (Version: 2.1 - WindowsProcessSecurity Software Inc)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Points de restauration =========================

25-08-2015 00:36:23 ZHPFix Restore System Point
03-09-2015 21:35:39 Point de contrôle planifié
10-09-2015 18:24:53 Windows Update

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {09ECC6F7-FDD1-4325-8598-28848CC969B1} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {1301C25E-DC73-46A7-8E0C-EE4C92E494C3} - \rl9iVtdTjlSunDK -> Pas de fichier <==== ATTENTION
Task: {158C9105-2801-4846-A365-35814E5E33F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {15C4966A-8821-4F24-BF55-BAAE26FE0145} - System32\Tasks\elfxrltc => C:\Program Files\Common Files\izuzccjl\9814bsf4vqfwe.exe [2015-08-18] ()
Task: {1B823F6B-1B4B-45D8-8BFB-B33D8858B130} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {1DDFEE22-9381-4D6F-9AF1-DAB1384022E8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd)
Task: {20D00E60-765F-40A2-A998-F5A368FEFFD7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {2A77764C-63CC-4BF3-B5B0-A14C4250287A} - \DTT -> Pas de fichier <==== ATTENTION
Task: {3A811EFC-8A95-4362-9A5A-86BF04F06980} - \cfr3011 -> Pas de fichier <==== ATTENTION
Task: {3C50E322-B409-4DA6-B856-6CBB13D6DE99} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {43071C74-877D-45A6-B692-439DA6EC2F04} - \B7pslW6hvZWpPQb -> Pas de fichier <==== ATTENTION
Task: {47C62EF5-B353-44C2-BFBE-0DAF4613A82A} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {52155CDE-5BB7-4AF0-A996-A6D5B94F4994} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-12] (Adobe Systems Incorporated)
Task: {5ECF496D-9DE9-4A03-9293-550036194FFE} - System32\Tasks\Install Mozilla Firefox => C:\Program Files\igfx32\packages\d6f1c307-6ab5-4358-abfe-22d5c290d4d5\fchk.exe
Task: {633C979E-0E53-4323-8B65-13CE1D1DA956} - System32\Tasks\ilxj5f0t => C:\Program Files\Common Files\wfydbipb\89d09yq2on2bz.exe [2015-08-18] ()
Task: {77AD6107-F4C5-4FF1-8E39-0E2C887E0CF3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {7866C546-C343-4E0C-B154-FAFC46DF5791} - \z33w37ovDCSGRzU -> Pas de fichier <==== ATTENTION
Task: {835F15FF-5354-4356-93A8-B33ABDCA4B9C} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2013-06-19] (ASUS)
Task: {8DDCD3F6-AB8C-405D-BBBB-D785CE6D8854} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe
Task: {909B5922-F9B8-4936-A620-7C334205D91B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {984CD917-5FC8-4D8D-991C-76A328852ED2} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {A1D60732-C455-44B1-8E9B-BE9B4557F7B0} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {A4E87819-5D73-4752-98F4-351FB73F6766} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-02-26] (ASUSTeK Computer Inc.)
Task: {B5FA656F-9F6C-4356-99E7-60F60568525D} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {CFC23C6B-F861-4BBF-B1AE-F9EC2D981979} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-11-28] (ASUS)
Task: {D4F5A9E6-5742-4389-836B-E15E1DD22C36} - \7e565c8c-5173-4887-99ce-1d7c5318d24d-10_user -> Pas de fichier <==== ATTENTION
Task: {EAC817D3-B4A7-4998-846D-A29557F99BE3} - System32\Tasks\updcte => C:\WINDOWS\system32\config\systemprofile\AppData\Local\Zoo
Task: {EF9CF9D1-3A8C-4621-9F2E-39F3748CC240} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {F9CE4C99-2EDB-4474-B985-DB49B0DE8C97} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2013-04-29] (AsusTek)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Modules chargés (Avec liste blanche) ==============

2012-12-19 08:10 - 2012-12-19 08:10 - 00072192 _____ () C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
2015-08-20 21:21 - 2015-08-20 21:21 - 00047616 _____ () C:\Users\MARTINEBO\AppData\Local\saogreen.exe
2013-12-10 09:13 - 2013-12-10 09:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-08-23 00:51 - 2013-10-23 10:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-06-19 21:49 - 2013-06-19 21:49 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2013-06-28 11:18 - 2012-11-21 10:58 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-07-12 22:27 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2013-04-27 10:24 - 2013-04-27 10:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll
2013-12-10 09:13 - 2013-12-10 09:13 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\MARTINEBO\Documents\%.eml:OECustomProperty

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\acwfp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Piiujkau => ""="service"

==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-4151986812-16683538-224380620-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-4151986812-16683538-224380620-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\MARTINEBO\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "VDownloader"
HKLM\...\StartupApproved\Run: => "cpuminer"
HKLM\...\StartupApproved\Run: => "gpuminer"
HKLM\...\StartupApproved\Run: => "shopperz200820151215"
HKLM\...\StartupApproved\Run: => "shopperz20082015121564"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "mbot_fr_289"
HKLM\...\StartupApproved\Run32: => "upmbot_fr_289.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Boxore Client"
HKLM\...\StartupApproved\Run32: => "mbot_fr_014010065"
HKLM\...\StartupApproved\Run32: => "gpuminer"
HKLM\...\StartupApproved\Run32: => "upmbot_fr_014010065.exe"
HKLM\...\StartupApproved\Run32: => "VDownloader"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\StartupFolder: => "StormWatch.lnk"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\StartupFolder: => "StormWatchApp.lnk"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "BrowserChoice"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "MyDriveConnect.exe"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "swg"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "Bubble Dock"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "WindApp"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "BatteryCare"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "VDownloader"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "apphide"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "PCSpeedUp"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "HCDNClient"
HKU\S-1-5-21-4151986812-16683538-224380620-1002\...\StartupApproved\Run: => "Selection Tools"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{97D5C46D-DD63-4E66-B448-CA1AA99E5CAB}] => (Allow) LPort=1900
FirewallRules: [{5480D6E6-2D48-4381-B654-E6AD301DA026}] => (Allow) LPort=2869
FirewallRules: [{9DAB75D0-75B7-441C-A1B8-22FF63FE8ED5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{F2D1978D-53B5-446A-B1E8-B5EE69B7C538}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [TCP Query User{A433438B-3DAD-4EB9-8550-5C40B11169B8}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [{967CFAD1-1051-449F-9F1C-2E4C62AD8C56}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{82AC0BDD-0D74-42E9-AB21-6CF304FA0CA3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{78689A55-E44E-4C0B-8B07-55FE1DA69ABD}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{4DF05B82-4E1B-41F5-BC8E-0FAD12D9EA78}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{CF994070-5D2C-465C-8FB1-52DA288DFEDB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{8D6F87AF-DD93-4B93-B7D7-8A8EFBD5EF3F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{D6BF9259-CD68-4875-9B7A-7F9B5A741935}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{8C2A0EC9-7126-48DE-A4E8-824CA9F6C091}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{D0AEF5DB-EDC5-4EE9-B90C-AFA9D4DD6537}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{151DF45F-3D90-46D0-8FFF-52FA99818D3A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{4CC526D8-4259-4359-BCF3-399EB052B975}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{F6DB30D2-FA28-4347-A955-2FF36357932D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{D1962455-1861-422C-9BBC-081164347682}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{14754D8D-52FC-412F-9DFE-913926692AEE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{569F1EB7-C525-4070-813F-5D05B646CDB6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{2B1E3D14-6D66-4A32-9C4A-F07FF2CA0055}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{8B443309-A341-476C-9EB0-A4C6A757807A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{EB35833A-E6AC-4099-9E48-84565E05B27D}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A9CA9CE6-5A6E-4916-B003-58B7E8237B8F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{3121156D-FBCB-47C8-A150-99EADCDF69D9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{B04713C8-A1A4-455F-894F-92C368D85488}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{64ECD8E8-C906-4343-B63F-92EFF5FA8BFB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Photosmart Prem C310 series
Description: Photosmart Prem C310 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (09/11/2015 07:00:03 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/10/2015 02:20:09 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/09/2015 08:33:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/08/2015 09:25:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17840, horodatage : 0x555fe1bb
Nom du module défaillant : MSHTML.dll, version : 11.0.9600.17963, horodatage : 0x55c93f44
Code d’exception : 0xc0000005
Décalage d’erreur : 0x003b4548
ID du processus défaillant : 0xac0
Heure de début de l’application défaillante : 0xIEXPLORE.EXE0
Chemin d’accès de l’application défaillante : IEXPLORE.EXE1
Chemin d’accès du module défaillant: IEXPLORE.EXE2
ID de rapport : IEXPLORE.EXE3
Nom complet du package défaillant : IEXPLORE.EXE4
ID de l’application relative au package défaillant : IEXPLORE.EXE5

Error: (09/08/2015 08:31:12 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/07/2015 04:27:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme wlmail.exe version 16.4.3528.331 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 964

Heure de début : 01d0e9792d9f8267

Heure de fin : 15

Chemin d’accès de l’application : C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

ID de rapport : 8d97d269-556c-11e5-803b-74d02be4b812

Nom complet du package défaillant :

ID de l’application relative au package défaillant :

Error: (09/07/2015 02:54:55 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/06/2015 11:37:44 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.34209 - Échec de l'initialisation de l'infrastructure d'attachement de l'API de profilage. Ce processus ne permet pas l'attachement d'un profileur. HRESULT : 0x80004005. ID de processus (décimal) : 5696. Id de message : [0x2509].

Error: (09/06/2015 08:23:23 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/05/2015 01:30:47 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154


Erreurs système:
=============
Error: (09/11/2015 10:37:58 PM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: Une alerte irrécupérable a été générée et envoyée au point de terminaison distant. Ceci peut entraîner l’arrêt de la connexion. Le code d’erreur irrécupérable défini par le protocole TLS est 10. L’état d’erreur de Windows SChannel est 10.

Error: (09/11/2015 10:37:58 PM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT)
Description: Une alerte irrécupérable a été générée et envoyée au point de terminaison distant. Ceci peut entraîner l’arrêt de la connexion. Le code d’erreur irrécupérable défini par le protocole TLS est 10. L’état d’erreur de Windows SChannel est 10.

Error: (09/11/2015 08:22:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Saophase n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (09/11/2015 08:20:57 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Superfetch s’est arrêté avec l’erreur :
%%1062

Error: (09/11/2015 08:17:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Management and Security Application User Notification Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/11/2015 08:17:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service NVIDIA Update Service Daemon s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/11/2015 08:17:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) ME Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/11/2015 08:17:54 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (09/11/2015 08:17:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Saophase s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/11/2015 08:17:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois.


Microsoft Office:
=========================
Error: (09/11/2015 07:00:03 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/10/2015 02:20:09 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/09/2015 08:33:14 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/08/2015 09:25:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.17840555fe1bbMSHTML.dll11.0.9600.1796355c93f44c0000005003b4548ac001d0ea6c14144a12C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\WINDOWS\SYSTEM32\MSHTML.dll5a16c9af-565f-11e5-803b-74d02be4b812

Error: (09/08/2015 08:31:12 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/07/2015 04:27:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wlmail.exe16.4.3528.33196401d0e9792d9f826715C:\Program Files (x86)\Windows Live\Mail\wlmail.exe8d97d269-556c-11e5-803b-74d02be4b812

Error: (09/07/2015 02:54:55 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/06/2015 11:37:44 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.34209 - Échec de l'initialisation de l'infrastructure d'attachement de l'API de profilage. Ce processus ne permet pas l'attachement d'un profileur. HRESULT : 0x80004005. ID de processus (décimal) : 5696. Id de message : [0x2509].

Error: (09/06/2015 08:23:23 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (09/05/2015 01:30:47 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154


CodeIntegrity:
===================================
Date: 2015-09-11 08:20:15.077
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:20:14.842
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:57.060
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:56.841
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:56.607
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:41.106
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:25.496
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:09.902
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:19:09.620
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-11 08:18:54.088
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 6029.58 MB
Mémoire physique - RAM - disponible: 4608.82 MB
Mémoire virtuelle totale: 6989.58 MB
Mémoire virtuelle disponible: 5442.35 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:279.01 GB) (Free:132.48 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecture de lecteur)]
Drive d: (Data) (Fixed) (Total:397.87 GB) (Free:372.8 GB) NTFS
Drive h: (CARTE PHOTO) (Removable) (Total:1.84 GB) (Free:1.81 GB) FAT

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 91A883DE)

Partition: GPT.

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité